8b634766d2307db675c4f98e18bc97ce_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8b634766d2307db675c4f98e18bc97ce_JaffaCakes118
Size

456KB
MD5

8b634766d2307db675c4f98e18bc97ce
SHA1

221ad27c58880d47835fdf2be0f071abb094f44a
SHA256

7914cdd1d74b6c60e0989d4fee66bec1fa49041e030e9ebacb7c1047f3263a09
SHA512

81a8bd8258a5ac750cb83532969f3830d5ca53e8019c8196ed72e8f55fff720ed44c77ffc2e6e790aa583897e02e9658826743efaa46225b3dc70754a8afe355
SSDEEP

6144:4p9ZfjeuAJ+XyMG3SaZ4esdBoS2GbcLORlpI2:2ZrHAsXm2fdt2GRpI2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b634766d2307db675c4f98e18bc97ce_JaffaCakes118

Files

8b634766d2307db675c4f98e18bc97ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d1fcac0a9641036a415edd8f5436d584

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetA
PropertySheetW

kernel32

GetBinaryTypeA
GetModuleFileNameA
LockResource
LoadResource
CreateThread
TlsGetValue
lstrcatA
FindResourceExA
GetCurrentProcessId
GetWindowsDirectoryA
GetEnvironmentVariableA
TlsFree
TlsSetValue
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrlenA
WideCharToMultiByte
lstrcpyA
lstrcmpA
MultiByteToWideChar
FreeLibrary
LoadLibraryA
GetProcAddress
GetModuleHandleA
lstrcmpiW
TlsAlloc
lstrlenW
GetCurrentThreadId
lstrcmpiA
lstrcpyW
CopyFileA
LoadLibraryW
CopyFileW
CreateFileA
CreateFileW
SetLastError
CreateDirectoryA
CloseHandle
CreateDirectoryW
GetLastError
GetFileAttributesW
GetFileAttributesA
GetVersionExA
InterlockedDecrement
InterlockedIncrement
GlobalFree
GlobalHandle
GlobalUnlock
GetSystemDefaultLangID
GlobalAlloc
GlobalLock
GetTickCount
LeaveCriticalSection
SetErrorMode
FindResourceA
GetLocaleInfoA
IsValidLocale
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcess
TerminateProcess
UnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
Sleep
FatalAppExitA
GetCurrentThread
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
SetConsoleCtrlHandler
HeapAlloc
HeapFree
RtlUnwind
SetStdHandle
GetUserDefaultLCID
LCMapStringA
LCMapStringW
SetFilePointer
GetStringTypeA
GetStringTypeW
SetEnvironmentVariableA
GetTimeZoneInformation
GetLocaleInfoW
FlushFileBuffers
IsValidCodePage
EnumSystemLocalesA
CompareStringA
CompareStringW

user32

CallWindowProcW
DefWindowProcW
IsDialogMessageA
DispatchMessageW
IsDialogMessageW
SetWindowLongW
GetWindowLongW
DialogBoxParamA
DialogBoxParamW
CreateDialogParamA
CreateDialogParamW
CreateDialogIndirectParamA
CreateDialogIndirectParamW
RegisterClassExA
RegisterClassExW
CreateWindowExW
keybd_event
MapVirtualKeyA
GetKeyState
GetAsyncKeyState
AdjustWindowRectEx
UpdateWindow
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
GetDesktopWindow
ShowWindow
GetWindowPlacement
GetParent
GetDoubleClickTime
DrawEdge
GetSysColorBrush
GetClassInfoExA
WinHelpA
IsWindowEnabled
GetClassLongA
GetWindowTextA
DrawIconEx
PeekMessageA
PeekMessageW
GetDlgItem
EnableWindow
ChildWindowFromPointEx
GetClientRect
PostMessageW
GetWindowTextLengthA
GetCapture
PostMessageA
OffsetRect
SetRectEmpty
LoadCursorA
SetCursor
SetCapture
SystemParametersInfoA
ReleaseCapture
GetDlgCtrlID
BeginPaint
GetCursorPos
DrawCaption
DrawFrameControl
GetSysColor
EndPaint
SetWindowPos
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
GetWindow
InvalidateRect
DialogBoxIndirectParamW
DialogBoxIndirectParamA
GetWindowRect
LoadImageA
wsprintfA
DestroyIcon
IsWindow
DestroyWindow
PtInRect
ClientToScreen
ScreenToClient
SendMessageW
SetActiveWindow
SetFocus
LoadBitmapA
SetForegroundWindow
GetForegroundWindow
GetWindowThreadProcessId
PostQuitMessage
MessageBoxW
MessageBoxA
LoadMenuIndirectA
LoadStringA
CharPrevA
IsWindowUnicode
GetMenuItemInfoA
GetMenuItemCount
InsertMenuItemA
CreatePopupMenu
GetSystemMetrics
GetFocus
MapWindowPoints
DrawStateA
GetMessageA
TranslateMessage
DispatchMessageA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
CopyRect
DrawTextExW
GetPropA
CallWindowProcA
RemovePropA
SetPropA
GetMenuStringW
SetMenuItemInfoW
GetSubMenu
TrackPopupMenuEx
DestroyMenu
SystemParametersInfoW
GetClassNameA
EnumWindows
EnumThreadWindows
CharNextW
CharNextA
FillRect
GetDC
ReleaseDC
SendMessageA
KillTimer
IsWindowVisible
SetTimer
GetWindowLongA
SetWindowLongA
DefWindowProcA
SetWindowTextA
EndDialog
GetActiveWindow
CreateWindowExA
AttachThreadInput

gdi32

ExtTextOutW
GetTextExtentPoint32W
GetObjectA
SetBkMode
SetTextColor
SelectObject
Rectangle
SetROP2
DeleteDC
GetStockObject
CreateFontIndirectA
CreateDCA
EnumFontFamiliesExW
GetObjectW
EnumFontFamiliesExA
GetTextExtentPointA
LineTo
CreateFontIndirectW
TranslateCharsetInfo
GetTextMetricsA
MoveToEx
GetTextExtentPoint32A
SetBkColor
ExtTextOutA
BitBlt
CreateCompatibleBitmap
CreatePen
Polyline
CreateCompatibleDC
DeleteObject

advapi32

RegEnumKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegQueryValueExW
RegDeleteKeyA
CloseServiceHandle
OpenSCManagerA
RegOpenKeyExW

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetPathFromIDListA

ole32

CoInitialize
CoDisconnectObject
CoRevokeClassObject
CoRegisterClassObject
StringFromCLSID
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
IIDFromString
StringFromGUID2
CLSIDFromString
CoCreateInstance

oleaut32

LoadRegTypeLi
LoadTypeLi
SysAllocString

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d1fcac0a9641036a415edd8f5436d584

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 168KB - Virtual size: 165KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 20KB - Virtual size: 36KB

.rsrc Size: 92KB - Virtual size: 88KB

.text
Size: 168KB - Virtual size: 165KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 20KB - Virtual size: 36KB

.rsrc
Size: 92KB - Virtual size: 88KB